Expand my Community achievements bar.

July 31st AEM Gems Webinar: Elevate your AEM development to master the integration of private GitHub repositories within AEM Cloud Manager.
SOLVED

How to implement user authentication using form basic and saml authentication?

Avatar

Level 2

Hi evebody,

I'm working in a project that need to implement two types of authentication one for customers employee using integration between ADFS and SAML and another for external user using AEM form basic.

Until now I can find any documentation about this specific scenario. Any tips will be very useful.

Thanks a lot.

Wagner Brito. 

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

1 Accepted Solution

Avatar

Correct answer by
Employee Advisor

Hi,

SAML authentication with SAML is documented at [1]. And what do you mean with "Form authentication"? Is it the "regular authentication" you have on AEM when no SAML is configured? That should work by default, and even when SAML is enabled, too.

 

[1] https://docs.adobe.com/content/help/en/experience-manager-64/administering/security/saml-2-0-authent...

View solution in original post

5 Replies

Avatar

Correct answer by
Employee Advisor

Hi,

SAML authentication with SAML is documented at [1]. And what do you mean with "Form authentication"? Is it the "regular authentication" you have on AEM when no SAML is configured? That should work by default, and even when SAML is enabled, too.

 

[1] https://docs.adobe.com/content/help/en/experience-manager-64/administering/security/saml-2-0-authent...

Avatar

Level 2

Hi @Jörg_Hoh.

I was talk about "regular authentication". But after configure SAML I can't access the AEM login form. May have a configuration that I forgot to do?

Since now thanks for your answer.

Avatar

Employee Advisor
Can you post the relevant log entries, when you try to authenticate with a "local" user? "local" means that you create the user within the AEM useradmin console.

Avatar

Level 2
Hi @Jörg_Hoh, thank for your time and answers but I can find a solution for my issue. In my case the saml configuration path I put "/aem/start" and others user will access using "/projects" in this way the second group will use AEM authentication. Best regards.

Avatar

Level 5

The main key IMO is to make sure the resource you are trying to authenticate is "seen" by the proper authentication handler.

In SAML, you can define the paths that, when a user needs permission to access, will trigger SAML Authenication handler.  For all others, it should default to the OOTB Sling Authentication when a CUG or ACL is on the resource.